Allied Telesis 8100L/8 devices allow XSS via the edit-ipv4_interface.php vlanid or subnet_mask parameter.
https://www.exploit-db.com/exploits/46237/
https://pentest.com.tr/exploits/Allied-Telesis-8100L-8-Cross-Site-Scripting.html
http://packetstormsecurity.com/files/151327/SirsiDynix-e-Library-3.5.x-Cross-Site-Scripting.html